December 9, 2024 at 07:07AM
Deloitte responded to claims by the ransomware group Brain Cipher, which alleges it stole over one terabyte of data. Deloitte stated the issue pertains to a single client’s external system, with no impacts on its network. The group has targeted various sectors and threatened to release stolen data unless paid.
**Meeting Notes Takeaways:**
1. **Ransomware Threat**: Deloitte has issued a statement regarding claims by the ransomware group Brain Cipher, which alleges the theft of over one terabyte of data.
2. **Data Source**: Deloitte confirmed that the allegations pertain to a single client’s system outside of its network, asserting that no Deloitte systems have been compromised.
3. **Ransom Demand**: Brain Cipher is threatening to release the stolen information in five days if a ransom is not paid.
4. **Group Background**: Brain Cipher has been active since April 2024 and gained notoriety in June after a significant attack on an Indonesian data center, affecting government and critical services.
5. **Previous Targeting**: The group has previously targeted various sectors, including healthcare, education, and manufacturing, employing LockBit-based malware.
6. **Association with Other Malware Groups**: There are connections between Brain Cipher and other groups like SenSayQ and EstateRansomware.
7. **Past Incidents**: This is the second time in recent months that Deloitte has addressed hacking claims, the first incident being in September when another hacker claimed to have stolen sensitive data, with Deloitte stating the impact was limited.
8. **Related Incidents**: Other organizations, such as BT and ENGlobal, are also currently investigating hacking incidents.
These points summarize the main issues discussed in the meeting while highlighting the implications for Deloitte and the broader cybersecurity landscape.